qemu-kvm-0.12.1.2-2.209.AXS4.4
エラータID: AXSA:2012-478:01
リリース日:
2012/04/12 Thursday - 13:34
題名:
qemu-kvm-0.12.1.2-2.209.AXS4.4
影響のあるチャネル:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- qemu-kvm の e1000 エミュレーション (hw/e1000.c) の process_tx_desc 関数にはヒープベースのバッファオーバーフローが存在し,巧妙に細工されたレガシーモードのパケットによって,ゲスト OS のユーザがサービス拒否 (QEMU のクラッシュ) を引き起こしたり,任意のコードを実行する可能性のある脆弱性があります。(CVE-2012-0029)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2011-2527
The change_process_uid function in os-posix.c in Qemu 0.14.0 and earlier does not properly drop group privileges when the -runas option is used, which allows local guest users to access restricted files on the host.
The change_process_uid function in os-posix.c in Qemu 0.14.0 and earlier does not properly drop group privileges when the -runas option is used, which allows local guest users to access restricted files on the host.
CVE-2011-4111
Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC_ATR message.
Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VSC_ATR message.
CVE-2012-0029
Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.
Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.
追加情報:
N/A
ダウンロード:
SRPMS
- qemu-kvm-0.12.1.2-2.209.AXS4.4.src.rpm
MD5: 0d2c19a9b9feac9d42fd5e13b8e87d57
SHA-256: 32e4b6ab7cf5aea91847bb12018b24ddcbf970decb2b7957a27f81b2b0b991c8
Size: 6.92 MB
Asianux Server 4 for x86_64
- qemu-img-0.12.1.2-2.209.AXS4.4.x86_64.rpm
MD5: a5eb05b9aa42a0106c4321871a87191e
SHA-256: 33e78203f2fab791704d9bc356a019cc6ae50e54d4efe757a2b10e104a8d7023
Size: 337.22 kB - qemu-kvm-0.12.1.2-2.209.AXS4.4.x86_64.rpm
MD5: 2b78b93aab7689dfb765c6b569a18986
SHA-256: e119442ca827e27cc54974d8192cad096c3f0208de07850a866d203881289f11
Size: 1.15 MB - qemu-kvm-tools-0.12.1.2-2.209.AXS4.4.x86_64.rpm
MD5: 7db456c7737f55f86f94ad7ef087525d
SHA-256: 453eb7a39cfd3178f223757b8d6d4c4a4f3debffbf85312bf6cdbb820e61e5e0
Size: 178.71 kB